User authentication and security in Common Lisp Webapps

• hunchentoot-auth

  1 3 10.0 Common Lisp

Some of the libraries I came across include hunchentoot-auth, mito-auth and restas-simple-auth.

• mito-auth

  1 18 10.0 Common Lisp

  User authorization for Mito classes.

Some of the libraries I came across include hunchentoot-auth, mito-auth and restas-simple-auth.

• InfluxDB

  www.influxdata.com featured

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• restas-simple-auth

  1 10 10.0 Common Lisp

  Simple RESTAS-plugin for user registration and authentication

Some of the libraries I came across include hunchentoot-auth, mito-auth and restas-simple-auth.

• cl-authentic

  1 7 10.0 Common Lisp

  Password management for Common Lisp (web) applications. THIS PROJECT HAS MOVED

cl-authentic (earlier cl-password-store) seems the most reliable in terms of having configurable hashes, but persistent logins and session management still seem to be left out.

• cl-password-store

  1 5 10.0 Common Lisp

  Password management for Common Lisp (web) applications

cl-authentic (earlier cl-password-store) seems the most reliable in terms of having configurable hashes, but persistent logins and session management still seem to be left out.

• red-light-green-light

  1 45 7.4 Common Lisp

  A git-centric policy management and enforcement tool designed to accelerate your CI/CD pipelines.

This is something I recommend outsourcing to something like keycloak. My lisp webapp, Red Light Green Light, uses keycloak for user auth and it works just fine. https://github.com/atgreen/red-light-green-light.

• hermetic

  1 43 10.0 Common Lisp

  Security for Clack-based Common Lisp web applications.

Maybe you can also consider using hermetic.

• SaaSHub

  www.saashub.com featured

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

• ironclad

  3 162 5.4 Common Lisp

  A cryptographic toolkit written in Common Lisp

  

You could use ironclad to hash your passwords, as well as handle other cryptography concerns: https://github.com/sharplispers/ironclad

• openbookstore

  5 34 7.9 Common Lisp

  Bibliographic search of books and personal manager (WIP) https://gitlab.com/myopenbookstore/openbookstore

  

Here's how we handle users and roles in my app at the moment: https://github.com/OpenBookStore/openbookstore/blob/master/src/authentication.lisp (also src/web/authentication.lisp) (currently not used in production©) (using mito-auth. From a quick look, the hashing method (sha256) seems easily replaceable). Hope it helps.

• mito-email-auth

  1 5 10.0 Common Lisp

  Helper to authenticate website's users by sending them unique code by email.

  

Another possibly helpful library: https://github.com/40ants/mito-email-auth ("to authenticate website's users by sending them unique code by email.")

• crypto-shortcuts

  1 20 4.9 Common Lisp

  Collection of common cryptography functions

crypto-shortcuts

• radiance-contribs

  1 12 6.5 Common Lisp

  Standard implementations and drivers for the radiance interfaces, as well as common helper packages.

  

And r-simple-auth coupled with r-simple-sessions looks reasonable. I couldn't find anything about radiance and CSRF, but given this lot of work, I might try issuing a PR sometime. Thank you much for your contributions Shinmera!

• cl-forms

  4 39 4.6 Common Lisp

  Web forms handling library for Common lisp

As for CSRF in forms: https://github.com/mmontone/cl-forms does it.

Suggest a related project